vikarti.anatra/safing-portmaster
1
0
Fork 0
mirror of https://github.com/safing/portmaster synced 2025-09-01 18:19:12 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

Fix cleaning up incomplete connections

Browse source
This commit is contained in:
Daniel 2023-08-07 21:55:31 +02:00
parent 2a41240212
commit 805a8e9e85
2 changed files with 18 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

15
network/clean.go
View file

@ -15,6 +15,11 @@ const (
// ended connections should be removed from the internal connection state. // ended connections should be removed from the internal connection state.
DeleteConnsAfterEndedThreshold = 10 * time.Minute DeleteConnsAfterEndedThreshold = 10 * time.Minute
// DeleteIncompleteConnsAfterStartedThreshold defines the amount of time after
// which incomplete connections should be removed from the internal
// connection state.
DeleteIncompleteConnsAfterStartedThreshold = 1 * time.Minute
cleanerTickDuration = 5 * time.Second cleanerTickDuration = 5 * time.Second
) )
@ -44,6 +49,7 @@ func cleanConnections() (activePIDs map[int]struct{}) {
now := time.Now().UTC() now := time.Now().UTC()
nowUnix := now.Unix() nowUnix := now.Unix()
deleteOlderThan := now.Add(-DeleteConnsAfterEndedThreshold).Unix() deleteOlderThan := now.Add(-DeleteConnsAfterEndedThreshold).Unix()
deleteIncompleteOlderThan := now.Add(-DeleteIncompleteConnsAfterStartedThreshold).Unix()
// network connections // network connections
for _, conn := range conns.clone() { for _, conn := range conns.clone() {
@ -53,7 +59,10 @@ func cleanConnections() (activePIDs map[int]struct{}) {
switch { switch {
case !conn.DataIsComplete(): case !conn.DataIsComplete():
// Step 0: delete old incomplete connections // Step 0: delete old incomplete connections
if conn.Started < deleteOlderThan { if conn.Started < deleteIncompleteOlderThan {
// Stop the firewall handler, in case one is running.
conn.StopFirewallHandler()
// Remove connection from state.
conn.delete() conn.delete()
} }
case conn.Ended == 0: case conn.Ended == 0:
@ -83,6 +92,10 @@ func cleanConnections() (activePIDs map[int]struct{}) {
// Step 3: delete // Step 3: delete
// DEBUG: // DEBUG:
// log.Tracef("network.clean: deleted %s (ended at %s)", conn.DatabaseKey(), time.Unix(conn.Ended, 0)) // log.Tracef("network.clean: deleted %s (ended at %s)", conn.DatabaseKey(), time.Unix(conn.Ended, 0))
// Stop the firewall handler, in case one is running.
conn.StopFirewallHandler()
// Remove connection from state.
conn.delete() conn.delete()
} }

6
network/connection.go
View file

@ -821,8 +821,10 @@ func (conn *Connection) StopFirewallHandler() {
conn.firewallHandler = nil conn.firewallHandler = nil
// Signal the packet handler worker that it can stop. // Signal the packet handler worker that it can stop.
close(conn.pktQueue) if conn.pktQueueActive {
conn.pktQueueActive = false close(conn.pktQueue)
conn.pktQueueActive = false
}
// Unset the packet queue so that it can be freed. // Unset the packet queue so that it can be freed.
conn.pktQueue = nil conn.pktQueue = nil